During bochscpu simulation, data from the heap is not fetched correctly.

Question

During bochscpu simulation, data from the heap is not fetched correctly.

g3un opened this issue 6 months ago · comments

I don't know if it's a problem with the bochscpu code or the backend code, but there was a problem where the pointer in the heap could not be retrieved properly.

When opening a dump created with snapshot with windbg:

kd> dq rcx
00000204`b6e0b060  00007ff8`20a98f80 00007ff8`20a98f80
00000204`b6e0b070  00007ff8`20add720 00007ff8`20add720
00000204`b6e0b080  00d9f791`00000000 00000204`b6e0c5fe
00000204`b6e0b090  00000000`0000000e 00000204`b6e0bef0
00000204`b6e0b0a0  0000073e`00001000 00000204`b6e0cef0
00000204`b6e0b0b0  00000000`00001000 00000000`00000000
00000204`b6e0b0c0  00000000`00000000 000e0001`00000001
00000204`b6e0b0d0  00000204`b6e0befe 00000000`00000000

However, the first time rcx+48(0x00000204b6e0b0a8) is accessed in the Tenet trace is as follows:

The pc at that point is mov r8, [rbx+10h] and rbx is 0x204B6E0B098.

Do you know anything about cases where the lower 4 bytes are lost as shown above?

ChanGeun Park · Answer 1 · Tue Feb 13 2024 13:29:52 GMT+0800 (China Standard Time)

Ah, I used the g_backend method incorrectly. sorry.

Axel Souchet · Answer 2 · Tue Feb 13 2024 23:40:23 GMT+0800 (China Standard Time)

No worries :) Cheers

…

On Mon, Feb 12, 2024 at 9:30 PM g3un ***@***.***> wrote: Ah, I used the g_backend method incorrectly. sorry. — Reply to this email directly, view it on GitHub <#194 (comment)>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AALIORK4JCEVEDO4ODEIJ5TYTL25ZAVCNFSM6AAAAABDF3QRHWVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMYTSNBQGQ2TCOBUGY> . You are receiving this because you are subscribed to this thread.Message ID: ***@***.***>